WordPress Plugin Vulnerabilities

One Click Demo Import < 3.1.0 - Admin+ Arbitrary File Upload

Description

The plugin does not validate the imported file, allowing high privilege users such as admin to upload arbitrary files (such as PHP) even when FILE_MODS and FILE_EDIT are disallowed

Proof of Concept

Affects Plugins

Plugin icon
one-click-demo-import
Fixed in 3.1.0

References

CVE
CVE-2022-1008
URL
https://plugins.trac.wordpress.org/changeset/2695999

Miscellaneous

Original Researcher
YICHENG LIU-ZTE CHENFENG lab
Submitter
YICHENG LIU-ZTE CHENFENG lab
Verified
Yes
WPVDB ID
0c2e2b4d-49eb-4fd9-b9f0-3feae80c1082

Timeline

Publicly Published
2022-03-21 (about 3 years ago)
Added
2022-03-21 (about 3 years ago)
Last Updated
2022-04-11 (about 3 years ago)

Other

Published
Title
Published
2025-06-11
Title
Workreap < 3.3.3 - Authenticated (Subscriber+) Arbitrary File Upload via 'workreap_temp_upload_to_media'
Published
2024-10-30
Title
Stars SMTP Mailer < 2.1.6 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2025-04-18
Title
AIHub < 1.3.8 - Unauthenticated Arbitrary File Upload in generate_image
Published
2015-04-25
Title
WooCommerce Amazon Affiliates - Arbitrary File Upload
Published
2024-04-22
Title
ActiveDEMAND < 0.2.42 - Unauthenticated Arbitrary File Upload